Skip to content

Misc improvements or fixes #251

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Open
Ericbla wants to merge 18 commits into
base: master
Choose a base branch
from
Open

Misc improvements or fixes #251

Ericbla wants to merge 18 commits into from

Conversation

@Ericbla
Copy link

@Ericbla Ericbla commented Dec 2, 2022

The kvspb project seems to have not accepted pull-requests since a long time, but creating this pull request from my own fork may provide some visibility on my fork for people looking for some new features or fixes.

mmguero and others added 18 commits April 20, 2020 14:54
@mmguero
Revert "Merge pull request kvspb#199 from AVENTER-UG/issue_180"
4e6f698 
This reverts commit bf64cf2, reversing
changes made to f022103.

This change isn't right -- it an LDAP setup when `group_attribute_is_dn
on` is enabled, which is what this section of code
(kvspb@bf64cf2#diff-c05c0daefb48996cbf510b81002b49bcR2230)
is conditionally targeting.  This original PR kvspb#199 changed the underlying
LDAP query (eg `user_val`) from looking up the user's DN as a group
attribute in LDAP (eg set via the `group_attribute` directive in nginx)
to looking up the _group's_ DN, which isn't right and won't work.

This PR reverts the previous change to make this work correctly again.

Fwiw, the originally-referenced issue kvspb#180 seems to be a completely
different issue, relating to escaping and parentheses.
@mmguero
Merge remote-tracking branch 'jcu-eresearch/fix-group-lookup'
0c9d333
@mmguero
Merge branch 'master' of https://github.com/kvspb/nginx-auth-ldap
bbeabad
@mmguero
Allow ssl_check_cert to be on (full verification), off (no verificati…
456514a 
…on) or chain (verify cert chain but not hostname/IP)
@mmguero
testing fix for kvspb#236 segmentation fault in ngx_http_auth_ldap_ss…
3686bd0 
…l_handshake_handler with ssl_check_cert and ssl_ca_dir
@mmguero
fix compiler error
61b70e4
@Ericbla
Merge pull request #1 from mmguero-dev/master
5cc107c 
PR: kvspb#237 from mmguero-dev
@Ericbla
- Add support of a resolver to resolve LDAP hostname
3338f5f 
- Add possibility to retrieve LDAP attributes during LDAP search
@Ericbla
- Fix resolver issues and use resolver at each connection (re-)establ…
f6790b3 
…ishement

- Replaces list of 'search_attribute XXX' parameter by 'search_attributes XXX [YYY [ ... ]]'
- Support additional/optional 'encoding' param for 'binddn_passwd'
  parameter
@Ericbla
Support Nginx 1.23 new headers list data structure
221529c
@Ericbla
- Resurect pending reconnect connections when needed
90708be 
- Fixes support of Nginx 1.23.0
@Ericbla
Support caching of LDAP search attributes
ccc8666
@Ericbla
- Fix max_down_retries >= 1 issue
e815260 
- Add clean_on_timeout parameter
- Improve debug traces when multiple connections are used
@Ericbla
- Fix reconnect event timer
312c5c6
@Ericbla
Fixes clean_on_timeout implementation
51fe79c
@Ericbla
Enhance log messages (level and content)
6d2c1ae
@Ericbla
Fixes ngx_http_auth_ldap_close_connection recuursive loop
3bdf4bc
@Ericbla
Fixes re-bind error recovery
930b19c
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

2 participants

@Ericbla @mmguero